nt0xa / sonarLinks
Sonar is a security researcher's Swiss army knife for finding and exploiting vulnerabilities that require out-of-band interactions
☆15Updated 3 weeks ago
Alternatives and similar repositories for sonar
Users that are interested in sonar are comparing it to the libraries listed below
Sorting:
- Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.☆29Updated 3 years ago
- IIS shortname scanner written in Go☆342Updated 2 years ago
- An MS Sharepoint and Frontpage Auditing Tool☆53Updated 10 months ago
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆212Updated last year
- Python Duo Push API☆39Updated 3 months ago
- "de-unicode" unicode escaped sequenses☆20Updated 3 months ago
- ☆182Updated 3 months ago
- A Tool for Domain Flyovers☆115Updated 10 months ago
- Phar + JPG Polyglot generator and playground (CTF CODE)☆94Updated 6 years ago
- ☆151Updated 2 years ago
- Enumerate / Dump Docker Registry☆180Updated last year
- A quick ‘n dirty nmap parser written in Golang to convert nmap xml to IP:Port notation.☆128Updated last year
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated last year
- ☆132Updated 4 years ago
- A python Flask app that generates dynamic DTDs for easy out-of-band data exfiltration.☆30Updated 2 years ago
- ☆44Updated 5 years ago
- Whitebox source code review cheatsheet (Based on AWAE syllabus)☆156Updated 3 years ago
- ☆41Updated last week
- TUDO - A vulnerable PHP Web Application☆122Updated 2 years ago
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆140Updated last year
- Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473☆108Updated last year
- Prototype Pollution Scanner☆127Updated 4 years ago
- Becoming the spider, crawling through the webs to catch the fly.☆78Updated 4 years ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆137Updated 5 years ago
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆136Updated 5 years ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆149Updated last year
- Automated learning of regexes for DNS discovery☆372Updated 2 years ago
- Dockerized labs For Web Expert (OSWE) certification. Preparation for coming AWAE Training ...☆111Updated 4 years ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆71Updated 2 years ago
- A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection☆70Updated 4 years ago